Get in touch

Privacy Policy

Last updated: 6 June 2025

1. Who we are

This website, www.hannazorandy.nl, is owned and managed by Hanna Zorándy, trading as Yoga Method, based in Utrecht, the Netherlands. Contact: hello@hannazorandy.nl.

As a data controller under EU GDPR, we’re committed to safeguarding your personal data and being transparent about how we collect, use, store, and share it.

2. What personal data we collect

We collect and process the following categories of personal data:

  • Identity: name, title, date of birth, gender

  • Contact: email, phone, billing/delivery address

  • Financial: bank or payment card details (if needed)

  • Transaction: your purchases, session bookings

  • Technical: IP address, browser/device info, cookies

  • Profile: username, password, preferences, survey responses

  • Usage: interactions with the website and services

  • Marketing: newsletter preferences and opt-ins

  • Sensitive: health or other personal details, only with explicit consent

3. How and why we process your data

We collect your data via:

  • Direct interactions (forms, bookings, emails)

  • Automated tools (cookies, analytics)

  • Third parties (e.g., payment providers, analytics tools like Google)

Processing purposes:

  • To manage bookings and orders

  • To deliver sessions and events

  • To communicate updates, surveys, reminders

  • For marketing, with your consent

  • For website analytics and improvement

  • For legal, accounting, or security compliance

Legal basis:

  • Contractual (e.g., to deliver sessions you booked)

  • Legitimate interest (e.g., analytics to improve webpages)

  • Explicit consent (e.g., for marketing emails or sensitive data)

4. Cookies and similar technologies

We use cookies to:

  • Enable essential site functions (strictly necessary)

  • Measure site performance and usage

  • Provide personalised content or ads (only with your consent)

We do not place non-essential cookies before you opt in. You can accept or refuse cookies via our cookie banner. You may change your preferences anytime via the banner or browser settings.

5. Who we share your data with

We may share data with:

  • Payment processors

  • Hosting and IT service providers

  • Email and marketing tools

  • Analytics services (e.g., Google Analytics)

  • Event or course partners

  • Legal advisers, accountants, insurers

  • Regulators, if required by law

If sharing outside the EEA, we use only secure transfers under GDPR standards, such as adequacy decisions or standard contractual clauses. We never share your data with third parties for marketing without explicit consent.

6. How long we keep your data

We retain your data only as long as necessary for:

  • Service delivery

  • Legal obligations (e.g., tax records—6 years)

  • Your explicit consented use

Afterwards, we delete or anonymise data securely.

7. Your rights

You have these GDPR rights:

  • Access to your data

  • Correction or deletion

  • Restriction or objection to processing

  • Data portability

  • Withdraw consent (for marketing/sensitive data)

  • Lodge a complaint with a supervisory authority

To exercise these, contact hello@hannazorandy.nl. Requests are free and typically processed within 1 month.

8. Data security

We implement technical and organisational measures to protect your data. Only authorised personnel see it. In case of a data breach, we will notify you and relevant authorities within 72 hours.

9. Changes to this policy

We may update this policy. Any changes will be published here with the new "last updated" date. We’ll inform you in advance if changes affect how we use your data.

10. Questions or concerns

If you have any questions about this policy or your rights, please contact me at hello@hannazorandy.nl.